ec0ec6294d60c61bbab551913285362d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ec0ec6294d60c61bbab551913285362d_JaffaCakes118
Size

3.5MB
MD5

ec0ec6294d60c61bbab551913285362d
SHA1

119817165551912014018c0bf5ff6f93215a2c4d
SHA256

f39903c3881eda76171ecc533683f141d662f928830b99bebf19f3fe00e9d4d5
SHA512

19840aca2e91f85a70bdf44211df8de3670aa8f926d006aa32a04a4f65dc4ed984fc0c6e39954a487eb7d36369b774b1899518f6587ef70b85aac6034f6dfeb5
SSDEEP

49152:3Mh02UsqFfTGYxzN2ALSI3wGcKBREQXa4zPCfOhzOu9yCLVMFwzONqxnyhNWQ0:DsAGY9wALSI3wGcUw4OGrL3qScN50

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ec0ec6294d60c61bbab551913285362d_JaffaCakes118

Files

ec0ec6294d60c61bbab551913285362d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 12.3MB - Virtual size: 12.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.2MB - Virtual size: 31.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 334KB - Virtual size: 333KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 797KB - Virtual size: 797KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ